I'm using Wedgetail JCSI SSO software to perform active directory (SPNEGO) authentication.
The protection of the web resources works fine, and in the web tier I can call request.getUserPrincipal(), and the correct calling principal is returned.
I did note though, that the principal and HttpServletRequest classes passed to the JSP pages are wedgetail wrappers, and not JBoss/Tomcat standard classes...
Principal Class: com.wedgetail.idm.sso.Krb5Principal
Request Class: com.wedgetail.idm.sso.NegotiateRequestWrapper
However, when calling an EJB, I would need to specify a security domain, and I'm not quite sure how to proceed. If i choose the default, then I get errors indicating "principal=null" on the create method for the EJB. I take this to mean that the principal has not been passed into any JAAS domain.
If anybody could point me in the right direction, would be very much appreciated!